$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2841/UaVmbTI7-EL2BEznEFl3PiJxsBM.mft File: UaVmbTI7-EL2BEznEFl3PiJxsBM.mft (raw, json) Hash identifier: +pX9yKhHCF7phVS3pbr6MQsox7y3vk/jz5TYCd7k67Q= Subject key identifier: 65:EB:41:2A:57:F9:EB:00:92:B9:C2:CD:13:CA:C4:68:33:49:A7:06 Authority key identifier: 51:A5:66:6D:32:3B:F8:42:F6:04:4C:E7:10:59:77:3E:22:71:B0:13 Certificate issuer: /CN=51A5666D323BF842F6044CE71059773E2271B013 Certificate serial: 238B Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/UaVmbTI7-EL2BEznEFl3PiJxsBM.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2841/UaVmbTI7-EL2BEznEFl3PiJxsBM.mft Manifest number: 2379 Signing time: Mon 23 Feb 2026 04:28:04 +0000 Manifest this update: Mon 23 Feb 2026 04:28:04 +0000 Manifest next update: Mon 23 Feb 2026 10:28:04 +0000 Files and hashes: 1: Dxf2IGNyXg9I98tAtX9uZk6GXVc.roa (hash: ONovWuC+zq8l+bwh2lQi2A19xeNKL6TpIuIc732PvrY=) 2: K6dM3LoliVMQPn-6OZ8bO8A4Ux8.roa (hash: /DWeD+5yM4Zt5ioOX6r2bUHR2V5mYF+BbU8pekEVfcQ=) 3: UaVmbTI7-EL2BEznEFl3PiJxsBM.crl (hash: 50j4pvRdC5IA6Jlhx7LvvO6tR3kgeugffFPjeZLVwkg=) 4: ezOO06_iD-bkUiK6a-jQQGyReTA.roa (hash: ffFfC37zZTiTuY/DyHhesVn6JkVaEASjK4B14hmOzoM=) 5: qQWXGEqmaabu6rR7VtaHiAiwOSg.roa (hash: CaxhdE2ToO1BsO0P9BXP8buuK40zGyoXTIP3IN4keuQ=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2841/UaVmbTI7-EL2BEznEFl3PiJxsBM.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2841/UaVmbTI7-EL2BEznEFl3PiJxsBM.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/UaVmbTI7-EL2BEznEFl3PiJxsBM.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Feb 2026 10:28:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9099 (0x238b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=51A5666D323BF842F6044CE71059773E2271B013 Validity Not Before: Feb 23 04:28:04 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=65EB412A57F9EB0092B9C2CD13CAC4683349A706 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:b9:9a:b1:09:93:4a:bd:56:41:8e:50:8f:f5: 68:28:a1:9a:d7:87:53:1f:cc:0d:43:df:d4:16:0a: c9:ba:f3:e3:46:94:1d:ff:cc:fc:8b:72:39:9e:46: 48:00:a2:34:96:f7:cf:e2:da:6c:75:8c:58:12:3d: f3:e6:df:b7:b7:54:eb:06:f0:b4:53:f5:2b:eb:b4: 0e:0a:f3:20:3f:c4:0c:56:33:c5:12:42:61:02:bb: 9c:98:1f:02:99:d7:64:9d:23:47:7f:f9:4d:b8:0d: 01:97:74:f5:1f:e4:9e:df:95:b5:d3:70:15:be:f6: 7a:3c:c2:a9:bc:ed:3b:16:a7:7e:4d:82:b9:45:90: d7:2f:47:fa:a7:22:b6:06:3c:1c:ea:ff:5a:be:a8: 41:c3:6d:01:56:a0:a7:6a:4c:48:82:4a:02:fc:ce: 08:ae:21:32:8a:6a:d0:21:63:71:8e:48:c0:1b:d8: 62:2a:74:f9:14:0a:ab:f6:b7:3b:8e:2a:cd:3b:fc: e0:26:15:73:e5:36:60:32:0b:bb:b7:2d:56:77:5e: df:4b:e2:8b:c8:91:65:e1:fe:c1:f1:55:64:9e:58: 26:45:f7:db:5c:0b:c7:e5:5f:c6:98:1c:e0:96:a3: 26:37:d4:05:69:d4:f0:92:14:76:7c:50:a4:36:da: 8a:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:EB:41:2A:57:F9:EB:00:92:B9:C2:CD:13:CA:C4:68:33:49:A7:06 X509v3 Authority Key Identifier: keyid:51:A5:66:6D:32:3B:F8:42:F6:04:4C:E7:10:59:77:3E:22:71:B0:13 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2841/UaVmbTI7-EL2BEznEFl3PiJxsBM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/UaVmbTI7-EL2BEznEFl3PiJxsBM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2841/UaVmbTI7-EL2BEznEFl3PiJxsBM.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:c7:28:cd:42:d3:08:2e:1c:c7:43:ce:58:92:e8:31:31:20: c3:84:6c:90:bd:e9:df:74:c9:c7:4e:f0:d8:11:bc:97:de:02: f7:31:2d:a4:9a:d5:34:77:94:65:dd:c3:58:9c:43:ec:98:fb: be:87:0b:71:ec:71:17:2c:a8:b8:00:c6:0f:a8:c3:63:15:2c: f3:c7:eb:cc:10:5b:98:02:e3:b1:da:e5:0c:1d:1a:d7:73:6b: b2:64:6e:a1:03:34:5b:a5:7f:07:b2:60:2a:54:6e:a7:14:a4: c3:22:91:c4:1c:76:52:ad:23:81:ef:3b:d2:1e:0e:7e:4e:f8: 25:5b:c7:23:be:61:52:7b:22:4c:c5:ff:8c:a1:d8:93:94:08: 5c:36:28:35:07:c5:cf:f0:7f:b1:e6:38:32:05:48:b0:44:2d: 54:85:46:35:af:59:e1:ce:13:db:03:49:f1:6e:2b:fc:6b:28: a7:f0:dd:eb:44:e8:ea:83:06:cd:85:16:00:17:b6:a6:7e:91: a6:59:23:89:2d:4a:8d:96:54:71:a8:b5:08:1d:6c:35:55:7a: c7:d7:a0:37:2f:50:d0:b6:4e:c8:2c:ab:59:40:a7:f3:01:d8: 7d:4c:64:c3:50:b3:ca:f0:af:71:9f:c0:e9:d4:c5:ad:53:e1: 7a:29:83:b3 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICI4swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTFB NTY2NkQzMjNCRjg0MkY2MDQ0Q0U3MTA1OTc3M0UyMjcxQjAxMzAeFw0yNjAyMjMw NDI4MDRaFw0yNzAxMDkwODIzMThaMDMxMTAvBgNVBAMTKDY1RUI0MTJBNTdGOUVC MDA5MkI5QzJDRDEzQ0FDNDY4MzM0OUE3MDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCVuZqxCZNKvVZBjlCP9WgooZrXh1MfzA1D39QWCsm68+NGlB3/ zPyLcjmeRkgAojSW98/i2mx1jFgSPfPm37e3VOsG8LRT9SvrtA4K8yA/xAxWM8US QmECu5yYHwKZ12SdI0d/+U24DQGXdPUf5J7flbXTcBW+9no8wqm87TsWp35NgrlF kNcvR/qnIrYGPBzq/1q+qEHDbQFWoKdqTEiCSgL8zgiuITKKatAhY3GOSMAb2GIq dPkUCqv2tzuOKs07/OAmFXPlNmAyC7u3LVZ3Xt9L4ovIkWXh/sHxVWSeWCZF99tc C8flX8aYHOCWoyY31AVp1PCSFHZ8UKQ22orZAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUZetBKlf56wCSucLNE8rEaDNJpwYwHwYDVR0jBBgwFoAUUaVmbTI7+EL2BEzn EFl3PiJxsBMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjg0 MS9VYVZtYlRJNy1FTDJCRXpuRUZsM1BpSnhzQk0uY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL1VhVm1iVEk3LUVMMkJFem5FRmwzUGlKeHNCTS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI4NDEvVWFWbWJUSTctRUwy QkV6bkVGbDNQaUp4c0JNLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAGjHKM1C0wguHMdDzliS6DExIMOEbJC96d90ycdO8NgRvJfeAvcxLaSa1TR3 lGXdw1icQ+yY+76HC3HscRcsqLgAxg+ow2MVLPPH68wQW5gC47Ha5QwdGtdza7Jk bqEDNFulfweyYCpUbqcUpMMikcQcdlKtI4HvO9IeDn5O+CVbxyO+YVJ7IkzF/4yh 2JOUCFw2KDUHxc/wf7HmODIFSLBELVSFRjWvWeHOE9sDSfFuK/xrKKfw3etE6OqD Bs2FFgAXtqZ+kaZZI4ktSo2WVHGotQgdbDVVesfXoDcvUNC2Tsgsq1lAp/MB2H1M ZMNQs8rwr3GfwOnUxa1T4Xopg7M= -----END CERTIFICATE-----Generated at Mon Feb 23 07:26:21 2026 by rpki-client